$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft File: 34pOYRe8o2iUDWjphUeYuWZgndQ.mft (raw, json) Hash identifier: /UhVb5+krWTBbEbs39zG1akEeXkNkH4SZUcwpv39eJ4= Subject key identifier: BC:FB:AF:DF:07:48:38:05:43:6B:7B:55:0D:C0:9C:EF:02:FB:1F:ED Authority key identifier: DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 Certificate issuer: /CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Certificate serial: 0871 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft Manifest number: 086B Signing time: Fri 22 Nov 2024 20:23:48 +0000 Manifest this update: Fri 22 Nov 2024 20:23:48 +0000 Manifest next update: Fri 29 Nov 2024 20:23:48 +0000 Files and hashes: 1: 34pOYRe8o2iUDWjphUeYuWZgndQ.crl (hash: n6ZGHsVUryP/jmdrVNQZEnBEuPRAJikgoPBzpu58InU=) 2: 9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa (hash: qrOVzHUnQpUjj2NXO2uI9c1Lmn26rV+B/0QYiSJpTNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2161 (0x871) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Validity Not Before: Nov 22 20:23:48 2024 GMT Not After : Nov 29 20:23:48 2024 GMT Subject: CN=6740e854-b7a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e6:cb:9a:64:ac:23:ad:21:a8:c6:59:6c:e1: 0e:48:41:38:aa:73:4b:b6:6e:3e:80:08:40:82:3c: b8:db:91:d9:7b:6c:64:ba:00:1b:31:8d:26:6b:0a: b7:97:ae:99:36:95:25:54:b5:67:65:44:39:2f:53: 29:10:f8:56:b9:f2:93:9b:c2:2b:12:d7:ae:93:ee: 0e:32:18:e2:7b:3e:a4:d9:f2:c3:7e:ab:b6:a7:cc: d8:21:d0:5c:b5:f0:20:1c:ca:3b:dc:e8:e9:83:f0: 0e:f7:d2:e0:bc:75:dd:8c:e4:2e:e8:9a:a6:e0:f9: 13:e4:db:30:b7:41:fe:b8:e4:89:a4:54:b8:5d:ee: b7:db:8b:c5:e0:7d:da:a7:6c:bf:3e:7c:83:91:21: 90:84:2f:19:12:b8:99:72:6e:51:19:e2:84:50:06: 95:e3:14:97:27:90:9c:c4:62:35:83:7b:12:e3:78: 11:04:3b:1e:ca:0f:ab:bb:ed:8f:d6:32:f9:a1:1d: 68:5d:90:a8:43:b7:3b:64:ef:85:41:06:80:78:cb: 94:b8:6f:bf:c5:3a:5e:3c:2a:fd:41:88:95:58:d0: dc:ab:2d:fe:26:2c:2a:8d:a0:5f:ba:c0:05:f5:eb: 1f:7d:ac:07:10:56:d3:b8:c2:97:57:a0:bd:25:c2: f8:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:FB:AF:DF:07:48:38:05:43:6B:7B:55:0D:C0:9C:EF:02:FB:1F:ED X509v3 Authority Key Identifier: keyid:DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:98:e0:44:16:7e:8b:23:9d:60:d2:f3:87:fc:ec:0f:fc:8e: 2f:6e:43:1d:bf:3e:43:33:45:c5:c7:51:12:e1:23:21:ce:92: 34:8f:e5:63:ad:3f:b4:ea:50:03:46:c7:3d:5a:de:a2:0a:d7: d8:68:2b:fd:0d:5a:6e:d0:21:aa:65:96:8b:eb:3d:c9:8a:99: 3c:09:ba:bc:d0:de:f2:31:7a:70:d5:11:1f:85:29:df:1f:9c: 5a:9b:2c:82:d5:ae:7e:92:c3:f9:2d:be:15:45:de:26:a7:2d: bb:14:c2:7a:8e:0a:fe:83:f5:07:fa:f9:b6:90:7e:fb:ba:1c: bc:1b:05:af:8c:2e:22:0c:c1:85:f1:25:d4:f2:2b:48:e1:a6: 3f:eb:65:1b:fd:87:42:1f:0b:d2:cb:37:37:b1:0d:d7:71:4e: 1e:e9:89:dd:5d:53:3f:6d:43:7e:c5:1d:6d:6b:6e:2d:52:ae: 15:c3:46:a0:98:c0:43:55:69:bf:81:0f:df:82:4c:d2:3a:88: fd:31:1a:c3:1b:a6:63:4f:1a:e9:d0:ba:b6:ee:94:89:db:47: 56:4b:9d:1c:7d:0a:8a:53:2d:03:f9:e1:05:2a:b6:90:1a:9a: 52:99:2e:6d:12:c8:9f:51:a3:67:b2:64:f5:a9:10:57:b1:a7: 78:7d:8d:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1MzAxMTAvBgNVBAUTKERGOEE0RTYxMTdCQ0EzNjg5NDBENjhFOTg1NDc5OEI5 NjY2MDlERDQwHhcNMjQxMTIyMjAyMzQ4WhcNMjQxMTI5MjAyMzQ4WjAYMRYwFAYD VQQDEw02NzQwZTg1NC1iN2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArubLmmSsI60hqMZZbOEOSEE4qnNLtm4+gAhAgjy425HZe2xkugAbMY0mawq3 l66ZNpUlVLVnZUQ5L1MpEPhWufKTm8IrEteuk+4OMhjiez6k2fLDfqu2p8zYIdBc tfAgHMo73Ojpg/AO99LgvHXdjOQu6Jqm4PkT5Nswt0H+uOSJpFS4Xe6324vF4H3a p2y/PnyDkSGQhC8ZEriZcm5RGeKEUAaV4xSXJ5CcxGI1g3sS43gRBDseyg+ru+2P 1jL5oR1oXZCoQ7c7ZO+FQQaAeMuUuG+/xTpePCr9QYiVWNDcqy3+JiwqjaBfusAF 9esffawHEFbTuMKXV6C9JcL40wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLz7r98H SDgFQ2t7VQ3AnO8C+x/tMB8GA1UdIwQYMBaAFN+KTmEXvKNolA1o6YVHmLlmYJ3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODUzMC8xOEY2NkQ4NkIx RTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8yaVVEV2pwaFVlWXVXWmdu ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0cE9ZUmU4bzJpVURXanBoVWVZdVdaZ25kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODUzMC8xOEY2NkQ4NkIxRTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8y aVVEV2pwaFVlWXVXWmduZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATmOBEFn6LI51g0vOH/OwP/I4vbkMdvz5DM0XFx1ES4SMhzpI0j+Vj rT+06lADRsc9Wt6iCtfYaCv9DVpu0CGqZZaL6z3Jipk8Cbq80N7yMXpw1REfhSnf H5xamyyC1a5+ksP5Lb4VRd4mpy27FMJ6jgr+g/UH+vm2kH77uhy8GwWvjC4iDMGF 8SXU8itI4aY/62Ub/YdCHwvSyzc3sQ3XcU4e6YndXVM/bUN+xR1ta24tUq4Vw0ag mMBDVWm/gQ/fgkzSOoj9MRrDG6ZjTxrp0Lq27pSJ20dWS50cfQqKUy0D+eEFKraQ GppSmS5tEsifUaNnsmT1qRBXsad4fY2l -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:40 2024 by rpki-client on console-ams.rpki-client.org